← Back

CVE-2017-17735

nvd nist
Published: Dec 18, 2017Modified: May 13, 2026

JSON object

Loading...
9.8
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

CMS Made Simple (CMSMS) before 2.2.5 does not properly cache login information in cookies.

Affected (1)

Cmsmadesimple
1 product
Cms Made Simple
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Cms Made Simple
Before 2.2.5

Related CWEs

CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (4)

Source: cve@mitre.org
Issue TrackingVendor Advisory
Source: cve@mitre.org
Issue TrackingVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Issue TrackingVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Issue TrackingVendor Advisory

Timeline

No history available yet.